Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
File: KUJPgsfIL8VJlTLlpmUadPYpxao.mft (raw, json)
Hash identifier: STfpg7KDAaMTbZdvsTEj+DtcLevrFOPMg9cgonyBfxU=
Subject key identifier: 55:F6:EC:63:4D:78:18:E0:09:03:E5:57:57:7D:20:0F:61:DB:2A:65
Authority key identifier: 29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
Certificate issuer: /CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Certificate serial: 0198D66119492170F50B0C457EC719C4640F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
Manifest number: 0A23
Signing time: Sat 23 Aug 2025 10:02:24 +0000
Manifest this update: Sat 23 Aug 2025 10:02:24 +0000
Manifest next update: Sun 24 Aug 2025 10:02:24 +0000
Files and hashes: 1: E7pOFVTH8vD5FpCiYaR8AAvSF9c.roa (hash: QknCCRzW2QumFMETOVNE4NTQsXWLabVtKWWfI6cIov4=)
2: KUJPgsfIL8VJlTLlpmUadPYpxao.crl (hash: OO5chEBRBW6FY5DPQyJQPv3DUNpNAlLPlNyOGY9uU6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:19:49:21:70:f5:0b:0c:45:7e:c7:19:c4:64:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Validity
Not Before: Aug 23 10:02:24 2025 GMT
Not After : Aug 24 10:02:24 2025 GMT
Subject: CN=55f6ec634d7818e00903e557577d200f61db2a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:7a:72:2b:38:30:90:69:74:dd:a2:7d:f4:30:
7f:af:ea:19:c3:49:d8:2d:d4:bb:0f:6b:12:56:f6:
dd:de:83:61:8a:8c:e0:7f:ea:ca:0f:39:19:02:3e:
cb:06:01:33:2d:15:92:30:f3:a8:7b:66:91:59:38:
23:bd:50:15:c1:36:ea:96:30:1c:04:d8:86:88:f2:
3d:f4:e7:d9:f8:50:72:1e:37:b0:1b:aa:3b:58:dd:
81:25:69:20:ee:7c:64:7d:22:22:f9:8b:d5:eb:28:
f3:d0:ed:ee:fd:db:04:ea:5d:82:00:cc:48:c2:73:
39:9a:28:e1:8b:36:37:ef:43:03:6d:7b:82:8e:03:
ec:83:b2:e6:ea:b6:7a:1a:3c:3a:a0:2d:73:97:f9:
99:71:de:80:5c:01:4d:8c:8f:5b:f2:f0:e0:00:df:
1d:c0:c7:fd:9c:bc:74:ff:11:7a:e6:70:5d:e3:40:
0e:18:01:5f:71:d5:00:6c:37:96:d4:b6:7c:27:32:
bb:64:96:a6:a3:2a:03:cc:dd:88:39:00:d5:02:84:
aa:f4:d9:64:7f:6a:1e:ad:52:96:27:7e:46:f9:d7:
96:05:d4:08:7c:70:e6:d7:25:ba:11:ac:f0:d6:60:
87:bd:6e:7a:1d:05:ad:fb:96:9f:f0:4a:1a:c9:8d:
61:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F6:EC:63:4D:78:18:E0:09:03:E5:57:57:7D:20:0F:61:DB:2A:65
X509v3 Authority Key Identifier:
keyid:29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ea:8b:77:3d:8a:e8:c7:2a:c9:ba:02:7e:5c:4f:7c:ca:c9:
9a:29:b9:92:98:be:e0:20:8d:f5:73:ae:e0:23:8b:fe:b7:ef:
ce:ed:93:d7:87:9e:fc:b8:31:a5:ee:85:01:f5:03:95:d5:77:
b6:00:cd:3c:7c:61:4a:7d:df:c7:6a:c7:aa:02:3c:05:23:33:
bf:50:af:ff:a8:a1:b3:44:06:ce:b6:d7:6e:29:1c:4a:b5:96:
70:95:9b:a1:99:3f:f0:6c:06:c0:01:1c:09:59:0b:32:85:db:
b9:dc:a7:88:2b:2b:33:12:3c:ad:4f:7c:82:ad:b7:f6:92:58:
71:a9:0d:f3:76:c6:11:25:b9:79:b3:92:97:3e:e4:00:18:35:
87:90:d4:6d:21:c5:ca:48:22:8f:ea:3b:e7:51:00:5c:66:9e:
c3:f7:fd:29:e0:76:d3:e6:b8:11:11:c9:59:25:b3:e6:f4:dc:
e0:4e:dd:dc:85:a1:f4:1b:9a:d9:77:96:1c:97:e5:53:da:41:
60:8f:90:ee:89:10:28:63:42:74:34:e5:7b:e0:73:0b:65:3f:
b9:80:20:c1:8f:8a:a4:94:a0:44:77:c2:ee:82:26:37:d2:43:
c2:ac:4c:b6:fa:36:10:94:ef:45:42:4d:e7:4f:a7:31:d1:19:
4b:ee:7c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:51:46 2025 by rpki-client